Bug 173888 - CVE-2005-3193 xpdf issues (CVE-2005-3191 CVE-2005-3192 CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627 CVE-2005-3628)
Summary: CVE-2005-3193 xpdf issues (CVE-2005-3191 CVE-2005-3192 CVE-2005-3624 CVE-2005...
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 4
Classification: Red Hat
Component: xpdf
Version: 4.0
Hardware: All
OS: Linux
medium
high
Target Milestone: ---
: ---
Assignee: Ngo Than
QA Contact: Mike McLean
URL:
Whiteboard: impact=important,reported=20051103,pu...
Keywords: Security
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2005-11-22 08:42 UTC by Mark J. Cox
Modified: 2007-11-30 22:07 UTC (History)
1 user (show)

(edit)
Clone Of:
(edit)
Last Closed: 2005-12-20 17:11:56 UTC


Attachments (Terms of Use)
Proposed patch from Derek (4.82 KB, patch)
2005-11-22 08:42 UTC, Mark J. Cox
no flags Details | Diff
Patch from Ubuntu (5.30 KB, patch)
2005-12-14 15:26 UTC, Josh Bressers
no flags Details | Diff
Patch from Dirk Mueller to add additional missing checks (3.07 KB, patch)
2005-12-14 15:28 UTC, Josh Bressers
no flags Details | Diff


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2005:840 normal SHIPPED_LIVE Important: xpdf security update 2005-12-06 05:00:00 UTC

Internal Trackers: 175404

Description Mark J. Cox 2005-11-22 08:42:15 UTC
Derek Noonburg sent us a patch for xpdf to correct a number of security issues.
 This is due to be public 20051201.

An attacker could construct a carefully crafted PDF file that could cause Xpdf
to crash or possibly execute arbitrary code when opened. 

This issue affects RHEL3, RHEL3, RHEL2.1

Comment 1 Mark J. Cox 2005-11-22 08:42:17 UTC
Created attachment 121332 [details]
Proposed patch from Derek

Comment 3 Josh Bressers 2005-12-06 14:11:57 UTC
This issue is now public:
http://www.foolabs.com/xpdf/download.html

Comment 4 Red Hat Bugzilla 2005-12-06 14:37:39 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2005-840.html


Comment 6 Josh Bressers 2005-12-14 15:24:28 UTC
The original fix for these issues was incomplete, reopening bug.

Comment 7 Josh Bressers 2005-12-14 15:26:49 UTC
Created attachment 122226 [details]
Patch from Ubuntu

Comment 8 Josh Bressers 2005-12-14 15:28:23 UTC
Created attachment 122227 [details]
Patch from Dirk Mueller to add additional missing checks

Comment 9 Josh Bressers 2005-12-14 16:12:35 UTC
There aren't currently any reproducers for these issues.

Please note that these issues affect xpdf, kdegraphics, cups, gpdf, tetex and
poppler.  Some cooperation will probably make things easier.

Comment 10 Ngo Than 2005-12-16 20:49:01 UTC
it's now fixed in xpdf-3.00-11.10

Comment 11 Ngo Than 2005-12-16 20:50:06 UTC
xpdf-2.02-9.8 and xpdf-0.92-17

Comment 14 Red Hat Bugzilla 2005-12-20 17:11:56 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2005-840.html


Comment 15 Josh Bressers 2006-01-06 17:59:33 UTC
Adding the folling CVE ids to this errata:

CVE-2005-3624
CVE-2005-3625
CVE-2005-3626
CVE-2005-3627
CVE-2005-3628

These were all fixed in the errata RHSA-2005:840


Note You need to log in before you can comment on or make changes to this bug.